Configuring a firewall for FRITZ!VPN

The FRITZ!VPN software allows you to establish a secure VPN (Virtual Private Network) connection over the internet to your FRITZ!Box and then access all of the devices and services in the home network of your FRITZ!Box.

If the computer with FRITZ!VPN is protected by a firewall on the computer or upstream router, before you can establish a VPN connection you may have to share the ports and IP protocols in the firewall that are required by FRITZ!VPN:

1 Configuring the firewall

The settings required for FRITZ!VPN are enabled in all FRITZ!Boxes by default and do not have to be configured manually. Make sure that any additional firewalls on the computer or an upstream router are also set up for FRITZ!VPN:

Configure the firewall so that it allows incoming and outgoing connections for the following ports and IP protocols:

UDP port 53 (DNS)

UDP port 500 (ISAKMP)

UDP port 4500 (NAT traversal)

ESP ("Encapsulated Security Payload", IP protocol number 50)

Note:The option for enabling the ESP protocol is often also called "IPsec Passthrough". You can find information on configuring the firewall or router in its manual, or consult its manufacturer directly.